Astaro Secure Gateway Authentication

If you use one of these which authentication method did you go for?

Active Directory Auth concerns me, not sure why im sur ethey have plugge dthe holes etc, leaning to wards radius.

are my concerns linking a firewall directly in to AD grounded?  or a bit old fashioned?

thanks
mhamerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Phil_AgcaoiliCommented:
This is a matter of preference and is debated.

I believe that a company should treat perimeter authentication differently than internal austhentication.

Using AD for remote access uses the same auth internally and externally.

I also believe that perimeter authentication requires another level of authentication such as 2-factor authentication such as RSA SecurID.

Google or let me know if you need more info.

Cheers.
0
Phil_AgcaoiliCommented:
Also Radius is a great authentication and accounting protocol server that will allow you to easily connect to an ACE server (for SecurID).

Let me know if you need more info.
0
mhamerAuthor Commented:
thank you   early day's

havent actually got it to join domain or authenticate yet :-)

I do like your point about using same authentication method.
0
Phil_AgcaoiliCommented:
Actually, I'm saying that I like different authentication for perimeter versus internal.
Use 2-factor (keylogger proof) auth at the perimeter and AD/LDAP for the intranet.

Good luck.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.